--- a/ChangeLog Sat Jan 11 22:57:47 2014 -0800
+++ b/ChangeLog Sat Jan 11 23:00:56 2014 -0800
@@ -26,6 +26,9 @@
+ * Fix buffer overflow with remote code execution potential. Only + triggerable by a Gadu-Gadu server or a man-in-the-middle. + (discovered by Yves Younan, Sourcefire VRT) (CVE-2014-NNNN) * Disabled buddy list import/export from/to server (it didn't work
anymore). Buddy list synchronization will be implemented in 3.0.0.
@@ -35,6 +38,8 @@
Cyrus SASL support. (#15517)
+ * Fix buffer overflow with remote code execution potential. + (discovered by Sourcefire VRT) (CVE-2014-NNNN) * Fix sporadic crashes that can happen after user is disconnected.
* Fix crash when attempting to add a contact via search results.
* Show error message if file transfer fails.
@@ -44,6 +49,10 @@
* Correctly set whiteboard dimensions in whiteboard sessions.
+ * Fix buffer overflow with remote code execution potential. + (discovered by Sourcefire VRT) (CVE-2014-NNNN) * Fix possible crash or other erratic behavior when selecting a very
small file for your own buddy icon.